AWS Direct Connect Connection Setup: Implementation Step for Private VIF

Ensure Successful AWS Direct Connect Connection Setup with Private VIF

Prev Question Next Question

Question

Your company is planning to set up an AWS Direct Connect connection along with a private VIF.

The company has 169 IP prefixes that will be advertised via the private VIF.

The company has raised the request and ensured that the equipment is in place.

What is an implementation step that they need to consider to ensure the connection works as desired?

Answers

A. Ensure also to create a public VIF to access the resources in the VP.

B. Summarise routes into route with the bigger mask.

C. Create a VPN connection.

D. Ensure a VPC Peering connection is in place.

Show Answer

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

Answer - B.

When troubleshooting AWS Direct Connect, one of the key issues is to ensure that the number of IP Prefixes summarised is below 100

Hence one of the steps would be to ensure that the routes are summarized into a default route.

Option A is incorrect since you don't need a public VIF to access the resources in a VPC.Options C and D are incorrect since there is no mention in the question for any other sort of connection requirements.

For more information on Troubleshooting AWS Direct Connect Issues, please refer to the below URL.

https://docs.aws.amazon.com/directconnect/latest/UserGuide/Troubleshooting.html

The correct answer is B. Summarize routes into route with the bigger mask.

When setting up an AWS Direct Connect connection with a private VIF, it is important to consider how the IP prefixes that will be advertised via the VIF will be routed. AWS Direct Connect uses Border Gateway Protocol (BGP) to exchange routing information with the customer's network. In this scenario, the company has 169 IP prefixes that will be advertised via the private VIF.

BGP routes are selected based on the longest prefix match. This means that if there are multiple routes that match a destination IP address, the BGP router will select the route with the longest prefix (i.e., the most specific match). Therefore, it is important to ensure that the advertised IP prefixes are summarized into larger prefixes to minimize the number of routes and reduce the complexity of the routing table.

For example, if the company has the following IP prefixes:

10.1.0.0/24
10.1.1.0/24
10.1.2.0/24
10.1.3.0/24
...
10.1.168.0/24
10.1.169.0/24

Instead of advertising all 169 individual IP prefixes, the company can summarize them into a single prefix of 10.1.0.0/16. This reduces the number of routes that need to be advertised and simplifies the routing table.

Option A is incorrect because creating a public VIF is not necessary for accessing resources in the VPC. A private VIF can provide access to the VPC resources as long as the appropriate routing is in place.

Option C is incorrect because creating a VPN connection is not necessary for setting up an AWS Direct Connect connection with a private VIF. VPN connections and Direct Connect connections are two separate networking solutions in AWS.

Option D is incorrect because VPC Peering is a different networking solution that enables customers to connect two VPCs together. It is not directly related to setting up an AWS Direct Connect connection with a private VIF.

Prev Question Next Question